Sources
OpenClaw: 9 CVEs in 4 Days, 42,900 Internet-Exposed AI Agent Instances, Sandbox Escape to RCE
Between March 18-21, nine CVEs were publicly disclosed for OpenClaw (135K+ GitHub stars), including a CVSS 9.9 critical sandbox escape where child processes spawned via sessions_spawn ran with sandbox.mode:off, and a command approval bypass where 'allow always' persisted at the wrapper level enabling payload swaps for RCE. Researchers found 42,900+ internet-exposed instances with 15,200 vulnerable to remote code execution. The jgamblin/OpenClawCVEs tracker now lists 156 total security advisories with 128 still awaiting CVE assignment.
↳ Follow the thread